IT and Cybersecurity Director

at Valid USA
Location Downers Grove, IL
Date Posted February 27, 2021
Category Default
Job Type Full-time

Description

Valid USA is a secure, make-it-happen partner. We are a global company with a market capitalization of more than $1 billion and 6,000 associates worldwide. Our job is to ensure every solution is seamless and secure - whether it’s for big data, payment cards, government issued identification, mobile financial services or highly targeted direct marketing campaign management.  Our website is www.validusa.com.

Valid has an outstanding opportunity for an IT and Cybersecurity Director based in our Downers Grove, IL office.  The IT and Cybersecurity Director will be a hands-on leader that will work cross-functionally responsible on design, planning, developing and executing an IT strategy and infrastructure.  This role will also manage technology risk to the organization by being responsible for developing, implementing and monitoring a strategic, comprehensive enterprise cybersecurity and IT risk management program, while ensuring business alignment and security governance.

What will you do?

  • Provides objective advice, expertise and leadership support to Executive team members with the aim of creating value, driving system performance and delivering to business expectations.
  • Setting short and long term IT strategy for department.
  • Owning, implementing, updating and evolving our security policy.
  • Serve as the cybersecurity risk and information security subject matter expert for the company.
  • Develop, enhance, implement and monitor a strategic enterprise information security and cyber risk management program.
  • Work with Executive Management to grow the districts use of technological resources.
  • Develop and maintain work standards and documentation manuals
  • Develop computer information resources, providing for data security and control, strategic computing and disaster recovery.
  • Evaluate the organization’s technology use and needs and recommend improvements, such as hardware and software upgrades.
  • Control operational budget and expenditures.
  • Oversee audits of systems, including SOC 1 & 2 certification processes and other security certification/assessments, and perform deep-dive analyses to address vulnerabilities and threat assessments.
  • Manage backup, security and user help systems.
  • Monitor all work for compliance with standards.
  • Help increase the efficiency and productivity of our employees.
  • Protect our internal data and manage any client data with multiple levels of confidentiality and privacy.
  • Using analytics, metrics and dashboards to monitor key business systems for security and failures.
  • Aligns and coordinates resources, priorities, work plans and activities throughout the company.
  • Provides leadership and direction for the department in dealing with a variety of organizational and programmatic issues.
  • Protects sensitive data, systems and applications from external threats.
  • Develops and implements business continuity protocols to minimize disruption to business operations in the event of emergency situations or data loss.
  • Overseas security of systems, networks and enterprise information.
  • Architect, supervise and participate in the implementation of technologies and platforms supporting a complex corporate data and voice infrastructure
  • Troubleshoot and remediate 4th level issues impacting the operation of the corporate voice and data infrastructure.
  • Manage and monitor the server infrastructure based primarily on Microsoft, Dell, NetApp and VMWare technologies.
  • Document the design, operation and troubleshooting of technology platforms and procedures.
  • Participate in on-call schedule for off-hours support of key systems.
  • Assist the team to implement and maintain all network, security and computer systems to meet the organization’s current and future compliance requirements such as PCI, GSMA-SAS, SOC, and ISO.
  • Perform daily administration and oversight of the network and computer systems. This includes the creation, deletion and maintenance of user accounts, mailboxes, distribution lists, groups and all associated security parameters.
  • Oversee the management, maintenance and architecture of the company’s Storage Area Network (SAN).
  • Oversee the management of all networking equipment to include servers, switches, hubs and routers.
  • Research, identify and evaluate new products and services within the IT field.
  • Interact and coordinate with vendors, suppliers, distributors and contract consultants.
  • Responsible for the development and documentation of corporate policies and procedures as related to network, system and device use and security.
  • Perform other special projects and technology initiatives as required.

What are we looking for?

  • 5+ years of experience in IT security.
  • BS in Electrical Engineering, Computer Science, Information Technology, Mathematics, or MIS preferred; education requirement can be substituted with demonstrated commensurate experience
  • Must have experience with PCI Compliance, CISSO, Security, Penetration Testing, Vulnerability Assessments and Risk Assessments.
  • 4-5 years of experience in the field related to the title of the IT Director position.
  • Experience in establishing cybersecurity and risk metrics for reporting.
  • 5+ years’ experience designing, implementing and maintaining voice and Data capable TCP/IP networks using Juniper Firewalls, Juniper Routers, Juniper Core switches, Cisco Routers, switches and Cisco Unified Call Manager.
  • Extensive knowledge of enterprise Ethernet, VLANs, QOS, routing, switching and IP addressing.
  • Experience managing a Windows 2003/2007-2012 Active Directory, Exchange environment, SQL and Citrix environments.
  • Understanding of carrier technologies including T1/PRI, MPLS, Metro Ethernet and systems interconnectivity.
  • Excellent communication skills and experience effectively communicating with technical and non-technical audiences.
  • Demonstrated efficient and effective use of problem-solving and task prioritization to solve complex network challenges.
  • Willing to travel.
  • Requires some after-hours support to include weekend work: Weekly rotation for 7x24 on-call support to perform maintenance on production systems, devices, and equipment, and weekly rotation of monitoring production processes.
  • In-depth understanding of information security and related infrastructure.

Preferred Qualifications

  • Management of virtualization technologies, particularly VMWare
  • Hands-on experience with the following network platforms: Riverbed WAN acceleration, Juniper Firewalls, Switches and Routers, Enteresys TSL VPN, Junos Pulse, Dell Compellent storage and Cisco converged switching
  • Enteresys Switches, Wireless Controllers, Access Points and WIDS.
  • Experience with Barracuda Load balancers, Web and Spam filters.
  • Experience with Solarwinds Network Performance Monitor
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Security Professional (CISSP)
  • Master’s Degree preferred

What we offer:

  • Benefits are effective on the 1st of the month following 30 days of employment and include a choice of 4 medical plan options under the Blue Cross Blue Shield, Dental, Vision, Disability and Life Insurance, 401(K), 2 weeks of vacation, 6 additional days of PTO (paid time off) and paid holidays.

#CB